21e2417e35f22b8d20136df540d86c70d546c377b25b1191c6b008f04fba4918 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

21e2417e35f22b8d20136df540d86c70d546c377b25b1191c6b008f04fba4918
Size

25KB
MD5

6a089d0d5246dea8e5a314903f754e80
SHA1

e62d86f7ed2a47fa6facb2ff8d454bce9773dcea
SHA256

21e2417e35f22b8d20136df540d86c70d546c377b25b1191c6b008f04fba4918
SHA512

b5183e7b0fb8c3a989e1e50a2773f5219a35c77b45b1b7b6f64617fb15a3740fd788d5f6259d47b6272bdbdb77a259df1574501c1e8f150f3e0044cea749a337
SSDEEP

384:RdqH2iV3OEaH8NjxaSUtv8Y3v5WMo/bwWMsnhu1jKnv7D3y:PidOVcTlgv8Y3v+mOu1jKvC

Score

N/A

Malware Config

Signatures

Files

21e2417e35f22b8d20136df540d86c70d546c377b25b1191c6b008f04fba4918
.dll windows x86

a748f28cb9486b22c180113d5d12668d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateThread
lstrcmpiA
GetModuleFileNameA
GetProcAddress
LoadLibraryA
GetSystemDirectoryA
ExitProcess

msvcrt

strrchr
strcat
memcpy
strlen
free
_initterm
malloc
_adjust_fdiv

Exports

Exports

DriverProc
widMessage
wodMessage

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 160B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ